Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

I've been out of that game for more than four years now, but I'd be astonished if it's less prevalent now than it was when I left. You seem very hung up on these famous brand names, I have no doubt that works out for your career, but in practical terms those aren't targets for such attacks. Too much by-catch.


I have no idea what you mean here, sorry.


Disregarding the personal attack, I think they mean that DNS hijacking for TLS hijacking is in fact relatively common, but only for smaller domains.


It is, but as I understand it, it's all just phishing. I haven't talked to anybody at a CA (maybe excepting Nick here?) who has told me direct cache poisoning attacks on the DNS have been a thing for domain hijacking. Like, full-on BGP4 attacks are more common (in that they actually happen).

If he wants to correct me on this, he should be probably do so more clearly and less evasively? I'm being pretty specific and making claims that I think are pretty easy to falsify.




Consider applying for YC's Summer 2026 batch! Applications are open till May 4

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: